On 4/22/11 10:04 AM, Nicholas Cole wrote:
> What I meant was rather this: there are several strategies that
> produce good passwords. Teaching them requires (at some employers) a
> 30 minute course or the reading of a web page. However, forcing any
> *particular* strategy onto users will dramatic
On Thu, Apr 21, 2011 at 1:38 PM, Robert J. Hansen wrote:
>> In short: don't force a particular strategy on your users. Much
>> better to explain to users the general problem, and then leave it up
>> to them to pick a password.
>
> Historically speaking, this has shown not to work. I'll try to di